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Art Unit: 2166 

DETAILED ACTION 

Specification 

The disclosure is objected to because of the following informalities: 

There are typological errors in page 3 line 2, page 4 line 16, and abstract line 2. 

"Assess" should have been "access". 

Appropriate correction is required. 

Claim Objections 
The disclosure is objected to because of the following informalities: 
Claim 2 recites "an user interface". Claim 4, which depends on claim 2, recites 

"the first user interface". The examiner respectfully suggests the applicant to change 

"an user interface" in claim 2 to "a first user interface" to be consistent with the 

terminology and avoid antecedent basis problem. 
Appropriate correction is required. 



Claim Rejections - 35 USC § 102 

The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that 
form the basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(e) the invention was described in (1) an application for patent, published under section 122(b), by 
another filed in the United States before the invention by the applicant for patent or (2) a patent 
granted on an application for patent by another filed in the United States before the invention by the 
applicant for patent, except that an international application filed under the treaty defined in section 
351(a) shall have the effects for purposes of this subsection of an application filed in the United States 
only if the international application designated the United States and was published under Article 21(2) 
of such treaty in the English language. 
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Claims 1-22 are rejected under 35 U.S.C. 102(e) as being anticipated by U.S. 
Publication Number 2002/0138763 issued to Shawn P. Delany et al (hereinafter 
"Delany"). 

As per claim 1, Delany discloses, 

A method of managing identity information on behalf of network services, the 
method comprising the steps of (Figure 1, paragraph 96): 

obtaining a first meta data record describing a first of said network services 
(paragraph 130); and 

utilizing said first meta data record to obtain a first service data record containing 
first identity management information for an user of the first network service (Figure 3, 
8, paragraph 108 - 109, 139 - 142). 

As per claim 2, Delany discloses, 

the step of utilizing the first meta data record to create an user interface for the 
user of the first network service to enable the user to view said first identity 
management information (Figure 8, paragraph 107, 154 - 155). 

As per claim 3, Delany discloses, 

the step of utilizing the first meta data record to create a first user interface for 
the user of the first network service to enable the user to modify said first identity 
management information (Figure 8, paragraph 108 - 109). 

As per claim 4, Delany discloses, 

the first user interface is dynamically configured during creation according to field 
information contained in the first meta data record (paragraph 130, 142, 155, 274). 
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As per claim 5, Delany discloses, 

obtaining a second meta data record describing a second of said network 
services; and 

utilizing said second meta data record to obtain a second service data record 
containing second identity management information for a second user of the second 
network service (Figure 1, 3, 8, and paragraph 108 - 109, 130, 139 - 142). 

As per claim 6, Delany discloses, 

utilizing the second meta data record to create a second user interface for the 
user of the second network service to enable the second user to view said second 
identity management information (Figure 8, paragraph 107, 154 - 155). 

As per claim 7, Delany discloses, 

the first identity management information includes first network service 
provisioning information for the user of the first network service (paragraph 1 1 , 109). 
As per claim 8, Delany discloses, 

denying access to the first network service where the first identity management 
information indicates that the user is not provisioned on the first network service (Figure 
11, 13, paragraph 106, 116- 118). 

As per claim 9, Delany discloses, 

A method of fulfilling identity management information requests from a network 
user (Figure 11, 13, paragraph 106), comprising: 

obtaining meta data associated with a network service (paragraph 109, 1 16 - 

118); 
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using the meta data to present an identity management user interface to an user 
of the network service (paragraph 107, 154 - 156); and 

populating the identity management user interface with identity information 
associated with the user (paragraph 142). 

As per claim 10, Delany discloses, 

receiving a request for identity management information for the network service 
from the network user over the user interface (Figure 11, 13, paragraph 106); 

obtaining the identity information associated with the network user (Figure 3, 8, 
paragraph 108 - 109).; and 

presenting the identity information to the network user via the user interface 
(Figure 8, paragraph 107, 154 - 156). 

As per claim 11, Delany discloses, 

accessing an identity information database and retrieving a service record from 
said identity information database containing identity information associated with the 
network user (Figure 3, 4, paragraph 129 - 120). 

As per claim 12, Delany discloses, 

modifying the identity information upon request of the network user (paragraph 
108- 109). 

As per claim 13, Delany discloses, 

writing changes to the identity information to an identity information database 
(paragraph 108-109). 

As per claim 14, Delany discloses, 
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validating at least one of the changes to the identity information and the identity 
information before writing the changes to the identity information to the identity 
information database (paragraph 109: 12 - 20). 

As per claim 15, Delany discloses, 

An identity management infrastructure, comprising: 

an interface layer configured to receive first identity management requests from 
first network users of a first network service and second identity management requests 
from second network users of a second network service (Figure 1 , Figure 3 element 
150, paragraph 135); 

a data access daemon configured to process the first and second identity 
management requests (Figure 3 element 120 and 152, paragraph 128 - 129, 132); and 

a data access layer configured to enable the data access daemon to access 
identity management data from at least one identity management database in 
connection with processing the identity management requests (Figure 3: agent and 
connection manager, paragraph 130-131). 

As per claim 16, Delany discloses, 

the data access layer comprises an API configured to communicate with the data 
access daemon, and an API configured to communicate with the identity management 
database containing the identity management data (paragraph 120, 148). 

As per claim 17, Delany discloses, 

the API is configured to communicate with the database utilizing at least one of 
Embedded Structured Query Language (ESQL), Open DataBase Connectivity (ODBC), 
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Java DataBase Connectivity (JDBC), and Lightweight Data Access Protocol (LDAP) 
(paragraph 120, 129). 

As per claim 18, Delany discloses, 

the data access daemon comprises a communications layer configured to 
facilitate communications with the interface layer (Figure 3, paragraph 136), and a data 
access daemon core configured to provide identity management services (Figure 3, 
paragraph 128- 129, 132). 

As per claim 19, Delany discloses, 

an API configured to interact with meta data structures and service structures 
retrieved from the identity management database (paragraph 120, 129, 148). 
As per claim 20, Delany discloses, 

the meta data structures describe the network services (Figure 3, paragraph 
130), and the service structures describe identity information associated with users of 
the network services (paragraph 139 - 142). 

As per claim 21, Delany discloses, 

an authentication module configured to authenticate the first and second network 
users and an authorization module configured to assess authorization levels associated 
with the first and second network users (Figure 1 element 34, paragraph 106, 116 — 
119, 148). 

As per claim 22, Delany discloses, 

a validation module configured to validate data prior to modification of data in the 
database (paragraph 109: 12 - 20). 
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Contact Information 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Sangwoo Ahn whose telephone number is (571) 272- 
5626. The examiner can normally be reached on M-F 8-5. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Hosain Alam can be reached on (571) 272-3978. The fax phone number for 
the organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). 



Sangwoo Ahn 
Patent Examiner 
AU2166 



12/29/2005 SW 



HOSAIN ALAM 
SUPERVISORY PATENT EXAMINER 



